151 to 175 of 247 Threat Detection Jobs in London

ambiguous environment. Key job responsibilities Detect, monitor and analyze security alerts from various sources to detect and respond to potential threats in real-time. Develop, implement, and fine-tune detection rules and correlation logic to improve threat detection capabilities. Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. Maintain and optimize … security information and event management systems and other security tools used in the SOC. Collaborate with other teams to enhance threat intelligence, improve incident response procedures, and provide regular reports on security posture. A day in the life As a Security Engineer in Detections, your day revolves around safeguarding our digital assets. This position supports other AWS Security Engineers … with security engineering, security operations and incident response activities. You will be responsible for coordinating and facilitating security response activities, fine-tuning detection rules. You'll investigate potential incidents, collaborate with threat intelligence teams, and develop new detection algorithms. About the team AWS-SOC Team manages security issues across the globe. A security engineer within the team More ❯

times, ambiguous environment. Key job responsibilities - Monitor and analyze security alerts from various sources to detect and respond to potential threats in real-time. - Develop, implement, and fine-tune detection rules and correlation logic to improve threat detection capabilities. - Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. - Maintain and optimize … security information and event management systems and other security tools used in the SOC. - Collaborate with other teams to enhance threat intelligence, improve incident response procedures, and provide regular reports on security posture. A day in the life As a Security Engineer in Detections, your day revolves around safeguarding our digital assets. This position supports other AWS Security Engineers … with security engineering, security operations and incident response activities. You will be responsible for coordinating and facilitating security response activities, fine-tuning detection rules. You'll investigate potential incidents, collaborate with threat intelligence teams, and develop new detection algorithms. About the team Diverse Experiences Amazon Security values diverse experiences. Even if you do not meet all of More ❯

times, ambiguous environment. Key job responsibilities - Monitor and analyze security alerts from various sources to detect and respond to potential threats in real-time. - Develop, implement, and fine-tune detection rules and correlation logic to improve threat detection capabilities. - Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. - Maintain and optimize … security information and event management systems and other security tools used in the SOC. - Collaborate with other teams to enhance threat intelligence, improve incident response procedures, and provide regular reports on security posture. A day in the life As a Security Engineer in Detections, your day revolves around safeguarding our digital assets. This position supports other AWS Security Engineers … with security engineering, security operations and incident response activities. You will be responsible for coordinating and facilitating security response activities, fine-tuning detection rules. You'll investigate potential incidents, collaborate with threat intelligence teams, and develop new detection algorithms. About the team Diverse Experiences Amazon Security values diverse experiences. Even if you do not meet all of More ❯

improve the internal security posture. You will identify and assess cyber security risks, leveraging tools like MS Defender, Sentinel, Azure, and external SOC partners to enhance cyber resilience, conduct threat analysis, and perform risk assessments. You will lead the Cyber Security operations, providing strategic direction and coordinating threat intelligence, threat detection, incident response, vulnerability management, and More ❯

key security initiatives, collaborating closely with engineering, operations, and compliance teams. With a strong emphasis on SecOps and a generalist approach, you’ll work across cloud infrastructure, application security, detection and response, and governance, risk, and compliance (GRC). Lead and deliver end-to-end security initiatives with minimal supervision. Foster a strong internal security culture, sharing knowledge and … driving improvements across teams. Ensure security outcomes are measurable, visible, and tightly aligned with risk. Collaborate with engineers and operations teams Build, maintain, and improve systems for threat detection and response (e.g. using AWS, Elastic). Work on application security and cloud infrastructure (AWS) – Terraform and Python development experience is highly valued. Support and maintain compliance frameworks and … functional efforts, and deliver security outcomes end-to-end. A passion for growing others – you actively drive knowledge sharing and foster a culture of security. Demonstrable SecOps experience, including threat detection, response, and operational security in cloud environments. Familiarity with tools like Elastic for threat detection and infrastructure-as-code tools like Terraform. Proficiency in Python More ❯

and regulations. You will be responsible for leveraging and optimising a number of tools including, MS Defender, Sentinel, Azure and the external SOC partner to enhance cyber resilience, conduct threat analysis, and proactive risk assessments to design effective controls. You will be leading the Cyber Security operations function, by providing strategic direction and coordinating day-to-day delivery of … threat intelligence, threat detection, incident response, vulnerability management, and ethical hacking capabilities. You will be leading a team of Infrastructure Engineers, ensuring strong data controls are in place, whilst working closely with key stakeholders to establishing responsibilities and ensure an end-to-end approach to cyber resilience Is embedded in other functions. What you'll need to More ❯

infrastructure. Project work is also part of the opportunity. Ideally, you will have skills in: Cyber Security Operations/Monitoring Security Information and Event Management (SIEM) concepts Vulnerability and Threat detection Intrusion detection and prevention, such as Darktrace Ethical Hacker, Cyber Security SANS, CISSP certification Defender, Cortex XDR EPP, EDR/XDR Networking and firewalls, IDS/ More ❯

a cyber security role (ideally within an MSP or multi-client setting) Security certifications like Security+, CySA+, or equivalent (working toward CISSP or equivalent a bonus) Strong understanding of threat detection, risk analysis, and incident response Training budget + paid certs + hybrid working More ❯

development and maintenance of a secure software development lifecycle (SDLC) with a focus on secure coding practices in languages like Python, C++, Rust, Go and Kotlin/Java. Conduct threat modeling, vulnerability assessments and security code reviews across different platforms, ensuring security is embedded at every stage of the development lifecycle. Provide mentorship, guidance, and training on security best … and ensure compliance with QRT's standards. Integration of security scanning tools (SAST, DAST, etc.) into CI/CD pipelines and runtime environments to ensure continuous security monitoring and threat detection across Alibaba Cloud, AWS, Azure, and on-prem systems. Proactively identify security risks and develop strategies for risk mitigation in a fast-paced high-stakes environment. At … and Linux-based systems. Extensive experience with one or more cloud platforms such as AWS, Microsoft Azure and Alibaba Cloud used in a hybrid environment. In-depth knowledge of threat modeling, risk assessment and development of mitigation strategies for large-scale, complex systems in a fast-paced environment. Experience integrating security scanning tools into CI/CD pipelines and More ❯

equivalent are preferred Bachelor's degree in Information Security, Computer Science, or related field Additional Skills Strong hands-on network and security background Cisco networking Cisco firewalls (Firepower/Threat Detection) Palo Alto firewalls SIEM experience (Logarithm desirable) Web proxy (Forcepoint desirable) Governance skills Policy writing/reviewing Reporting KPI monitoring Certifications like CCNP/CISM would be More ❯

CISO or repeat offenses for further action or disciplinary review with HR. Supporting the management, tuning, and improvement of DLP tools and rulesets to reduce false positives and increase detection accuracy. Collaborating with IT or third-party providers to ensure DLP systems are operational, updated, and aligned with business needs and regulation requirements. Producing clear, data-driven monthly reports … Experience using DLP technologies (e.g., Microsoft Purview, Symantec, Forcepoint, or similar). Familiarity with data classification, data handling standards, and regulatory requirements (e.g., NYDFS, GDPR). Knowledge of insider threat detection and user behavior analytics (UBA). Exposure to security incident and event management (SIEM) tools. Core Values Love what you do: We show up each day ready More ❯

advice to senior management regarding incident response, monitoring, logging and analysis of all relevant systems and processes. . Define and evolve the cyber security operations strategy in line with threat posture and government direction. . Develop and maintain a robust cyber incident response plan and identify the required levels of cyber investment within the CSOC to include governance, tooling …/host-based IDS/IPS tooling. . Proven experience setting up SOCs from scratch. . Strong background in SOC strategy, optimisation, and transformation. . Experience in incident response, threat detection, and monitoring frameworks. . Familiarity with tools such as SIEM, IDS/IPS, antivirus, and correlation platforms. . Knowledge of cyber security regulations and frameworks (eg GDPR More ❯

on IaaS, container security (e.g., AKS), and DevOps pipelines Evaluate Terraform scripts, advising on automation processes for secure infrastructure deployment Optimize Azure Defender and other monitoring tools to elevate threat detection capabilities Implement Conditional Access policies, enforcing zero trust and least privilege principles Collaborate across teams to align security protocols with operational objectives Required Skills/Qualifications: Experience More ❯

including predominantly Fortinet equipment Provide 3rd line support for complex technical issues, ensuring timely resolution and minimal disruption to clients. Ensure robust cyber security measures are in place, including threat detection, response, and mitigation. Collaborate with clients to understand their IT needs and provide tailored solutions. Document technical procedures, configurations, and project plans. IT Project Engineer - Skills and More ❯

in advanced cybersecurity solutions. The organization operates Security Operations Centers (SOCs) across multiple regions, including offices in the US, UK, Middle East, Africa, and Australasia, offering services such as threat detection and response, incident management, and cyber risk advisory. Key Responsibilities: Customer Service Delivery: Serve as the primary point of contact for cybersecurity services, ensuring efficient and effective More ❯

PowerShell scripts for automation and system management. Configure, manage, and troubleshoot firewalls and other security appliances including predominantly Fortinet equipment Ensure robust cyber security measures are in place, including threat detection, response, and mitigation. Collaborate with clients to understand their IT needs and provide tailored solutions. Document technical procedures, configurations, and project plans. Technical Proven experience in a More ❯

Transparency in Cybersecurity: OPSWAT's Approach to File Security & Threat Detection Senior Joint Professional Services - Technical Support Engineer Protecting the World's Critical Infrastructure OPSWAT, a global leader in IT, OT, and ICS critical infrastructure cybersecurity, delivers an end-to-end platform that gives public and private sector organizations and enterprises the critical advantage needed to protect their More ❯

and business value enablement training for sales, SEs, and partners. Ability to work independently and collaboratively in a fast-paced environment. Articulate the importance of Cloud Security Analytics and Threat Detection, and evangelize Data Advantage Cloud as the leader in the market to end-users of all levels. Travel 25%-50%. Requirements Bachelor’s Degree or equivalent More ❯

technologies to enhance operational efficiency and security. Infrastructure & Security Management Oversee the management of IT infrastructure, networks, trading and cloud environments. Ensure robust cybersecurity measures are in place, including threat detection, data protection, and compliance with financial regulations. Manage business continuity and disaster recovery plans to safeguard IT operations. Production Support Lead the IT helpdesk team in delivering More ❯

Collaborate with stakeholders to drive security initiatives and strategy • Implement a best practice IT Controls Framework • Act as the security SME across IT, overseeing security operations, incident management and threat detection • Ensure robust third-party security, including commercial agreements • Implement security policies and standards • Manage cybersecurity risks and response to incidents • Implement plans to meet cybersecurity regulatory requirements More ❯

Nozomi Networks is the leader in OT and IoT Cybersecurity. We protect the world's critical infrastructure, industrial and government organizations from cyber threats by providing exceptional network visibility, threat detection and operational insight. We’re always innovating and we hire the best at what they do to ensure our customers always have access to fast product enhancements More ❯

Expert, or similar are highly desirable. Skills: Extensive experience in designing and implementing cybersecurity architectures for complex, enterprise environments, with a focus on Microsoft Cloud technologies. Knowledge of advanced threat detection, incident response, and digital forensics. Strong strategic thinking skills, with the ability to develop and execute long-term cybersecurity plans. Ability to lead large-scale cybersecurity initiatives More ❯

applications and cloud-native services within AWS. Develop and enforce DevSecOps principles by integrating security into CI/CD pipelines. Lead efforts in application security, including secure coding practices, threat modelling, and vulnerability assessments. Architect and manage IAM policies, roles, and permissions across AWS resources. Guide development teams on security best practices related to AWS security services such as … in AWS security services, including IAM, KMS, GuardDuty, Security Hub, and AWS WAF. Strong understanding of Terraform, AWS CloudFormation, or similar. Hands-on experience with cloud security monitoring and threat detection. Familiarity with Kubernetes, AWS EKS, Docker. Seniority level Seniority level Mid-Senior level Employment type Employment type Full-time Job function Industries Technology, Information and Media Referrals increase More ❯

support services, and enterprise architecture. Lead strategic initiatives during acquisition activities, ensuring smooth systems integration and transition. Champion a robust cybersecurity strategy that aligns with ISO27001 compliance and proactive threat detection. Establish and maintain effective disaster recovery and business continuity plans. Optimise IT performance through service delivery improvements and effective budget management. Drive digital transformation and promote the adoption More ❯

Infrastructure and Security architecture, ensuring performance, scalability, and sustainability. Manage the organisation’s cybersecurity posture, including vulnerability assessments, incident response planning, and coordination with security MSPs for SIEM and threat detection. Assess current systems and infrastructure, identifying opportunities for optimisation, automation, and integration of new technologies to enhance efficiency and performance. Act as a technical liaison between IT and More ❯